1
0
mirror of https://github.com/drduh/YubiKey-Guide.git synced 2024-12-22 21:58:06 +00:00
Commit Graph

468 Commits

Author SHA1 Message Date
Phill Kelley
f8fcb0c2d1
add step to set disable-ccid in scdaemon.conf
Issue #404 reports "GPG acts like my YubiKey isn't plugged in".

With GnuPG 2.3 and later, the system can get into a loop where it
prompts for insertion of a YubiKey even though that YubiKey is already
connected.

The solution for this is to set `disable-ccid` in
`~/.gnupg/scdaemon.conf`.

Testing suggests setting `disable-ccid` does not interfere with earlier
versions of GnuPG (eg 2.2.27 on Debian Bullseye or 2.2.40 on Debian
Bookworm).

This problem has also been mentioned in #277 and #256. Including a step
in the Guide to set `disable-ccid` may help minimise recurrence.

Also takes the opportunity to ensure `~/.gnupg` directory exists on a
new system before downloading `gpg.conf`.

References:

* Ludovic Rousseau

	- [GnuPG and PC/SC conflicts](https://ludovicrousseau.blogspot.com/2019/06/gnupg-and-pcsc-conflicts.html)

* GnuPG.org:

	- [Scdaemon Options](https://www.gnupg.org/documentation/manuals/gnupg/Scdaemon-Options.html#index-disable_002dccid)

* YubiCo:

	- [Resolving GPG's CCID conflicts](https://support.yubico.com/hc/en-us/articles/4819584884124-Resolving-GPG-s-CCID-conflicts)
	- [Troubleshooting Issues with GPG](https://support.yubico.com/hc/en-us/articles/360013714479-Troubleshooting-Issues-with-GPG)

* Closed issues:

	- [277 pcscd: Error Reader Exclusive](https://github.com/drduh/YubiKey-Guide/issues/277)
	- [256 Update scdaemon.conf for gnupg 2.3 with MacOS (and possibly others)](https://github.com/drduh/YubiKey-Guide/issues/256)

Fixes #404

Signed-off-by: Phill Kelley <34226495+Paraphraser@users.noreply.github.com>
2024-02-10 14:11:33 +11:00
drduh
f2e5ef2c18
Merge pull request #401 from wildwestrom/master
Fix NixOS image: replace deprecated option boot.cleanTmpDir -> boot.tmp.cleanOnBoot
2023-12-10 15:17:13 -08:00
West
7dedee95e0
Fix deprecated boot.cleanTmpDir for boot.tmp.cleanOnBoot 2023-10-21 03:22:22 +00:00
drduh
c41729520f
Merge pull request #399 from drduh/wip-15oct23
Remove ancient keyservers
2023-10-15 21:04:02 -07:00
drduh
f76004cffc Update debian version 2023-10-15 21:02:59 -07:00
drduh
41f3cce9f0 Remove ancient keyservers 2023-10-15 20:50:42 -07:00
drduh
703c6aa37f
Merge pull request #386 from Xronophobe/docs/update-debian-12-live
add notes for installing #Required Software on Debian 12
2023-10-15 16:19:26 -07:00
drduh
5d1e524af5
Merge pull request #387 from dkarlovi/patch-1
fix: add an explicit example about publishing the pubkey when expiring
2023-10-15 16:19:00 -07:00
drduh
ce29f5db92
Merge pull request #395 from alhirzel/patch-1
Add link to "makegpg" tool
2023-10-15 16:13:47 -07:00
drduh
dc201e90cd
Merge pull request #396 from zeorin/fix/nixos
Fix NixOS LiveCD image build
2023-10-15 16:12:53 -07:00
drduh
320f4ef4cb
Merge pull request #398 from askiiart/master
Update rpmsphere version
2023-10-15 15:24:53 -07:00
Xandor Schiefer
687ff41fb0
fix: use nix-build instead of nix build
`nix build` is a new "Nix command" that is technically still experimental.
2023-10-14 12:29:34 +02:00
Xandor Schiefer
6c422ee16f
fix: update hopenpgp-tools in the NixOS build
Fixes https://github.com/drduh/YubiKey-Guide/issues/370.
2023-10-14 12:29:23 +02:00
askiiart
1035e1ab39
Update rpmsphere version 2023-10-10 16:53:17 +00:00
Alex Hirzel
3f92a76287
Add link to "makegpg" tool 2023-09-22 10:28:23 -04:00
Csanad Beres
d4b3e5215b add note for installing yubikey-manager on Debian 12 2023-08-18 19:40:26 +02:00
Csanad Beres
ec47fa32d6 add note on installing hopenpgp-tools on Debian 12 2023-08-18 19:30:57 +02:00
Dalibor Karlović
2383a66823
fix bad copy paste 2023-08-14 10:19:42 +02:00
drduh
4a641dffd0
Merge pull request #391 from FedericoSchonborn/master
Required Software/NixOS: Replace yubioath-desktop with yubioath-flutter
2023-08-13 13:25:14 -07:00
drduh
f486224f5d
Merge pull request #388 from Paraphraser/20230628-multiple-hosts-master
2023-06-28 Add section on setting up multiple hosts
2023-08-13 13:23:52 -07:00
drduh
e89e855bb4
Merge pull request #383 from o-kotb/master
Update ykman set-touch instructions
2023-08-13 13:11:05 -07:00
drduh
b62293979b
Merge pull request #380 from smoores-dev/adduid
Add instructions for adding a new identity
2023-08-13 13:10:43 -07:00
drduh
b047e2f666
Merge pull request #379 from Dreista/patch-1
Fix typo
2023-08-13 13:09:12 -07:00
drduh
649c8fd78e
Merge pull request #377 from taigrr/polkit-req-376
add polkit rule troubleshooting tip
2023-08-13 13:09:02 -07:00
Federico Damián Schonborn
018f7d0e68
Required Software/NixOS: Replace yubioath-desktop with yubioath-flutter
Trying to use yubioath-desktop results on this error:

    yubioath-desktop has been deprecated by upstream in favor of yubioath-flutter

On the current stable channel (23.05).

Signed-off-by: Federico Damián Schonborn <fdschonborn@gmail.com>
2023-07-16 01:09:42 -03:00
Phill Kelley
61def5abda
add missing code-fence language indicators + zap extraneous tabs
Signed-off-by: Phill Kelley <34226495+Paraphraser@users.noreply.github.com>
2023-06-29 14:24:25 +10:00
Phill Kelley
008f1caf79
explain use of card URL field to obtain public key from keyserver
Signed-off-by: Phill Kelley <34226495+Paraphraser@users.noreply.github.com>
2023-06-29 11:35:30 +10:00
Phill Kelley
0310feaecc
2023-06-28 Add section on setting up multiple hosts
Issue #382 suggests adding a section explaining how to use the same
YubiKey on multiple hosts.

This PR incorporates most of the suggestions.

Fixes: #382

Signed-off-by: Phill Kelley <34226495+Paraphraser@users.noreply.github.com>
2023-06-28 23:44:09 +10:00
Dalibor Karlović
3caab5bacf
fix typo 2023-06-26 11:21:22 +02:00
Dalibor Karlović
619537629f
fix: add an explicit example about publishing the pubkey when expiring 2023-06-26 11:19:08 +02:00
Omar Kotb
327307dc46
Update ykman set-touch instructions 2023-05-15 10:52:19 +03:00
Shane Friedman
bc6582062c
Add instructions for adding a new identity 2023-04-15 21:31:29 -04:00
Kumiko as a Service
fefe40f36d
Fix typo
pegant -> pageant
2023-03-31 03:55:58 -04:00
Tai Groot
ec2e8cae7e add polkit rule troubleshooting tip 2023-03-21 15:57:51 -07:00
drduh
fec6e92b8f
Merge pull request #372 from PhilipMay/patch-2
Mac command to activate change for pinentry.
2023-03-19 10:42:26 -08:00
drduh
7378db0363
Merge pull request #371 from PhilipMay/patch-1
Describe command to disable OTP with ykman.
2023-03-19 10:42:09 -08:00
Philip May
b6c2485f43
Update README.md 2023-02-16 20:59:04 +01:00
Philip May
0bccb363c2
Update README.md 2023-02-16 20:34:52 +01:00
drduh
6437be8fda
Merge pull request #361 from drduh/wip-winter22
Fix issues #345, #351
2022-12-26 14:47:57 -08:00
drduh
e823203503 Update toc 2022-12-26 14:44:27 -08:00
drduh
33d0f87a34 More entropy cleanup, move batch instructions to alt 2022-12-26 14:33:09 -08:00
drduh
ee84dc53ac Clean up entropy instructions 2022-12-26 14:13:21 -08:00
drduh
100767b0f8
Merge pull request #360 from drduh/wip-winter22
Fix issues #300, #331, #304, #322, #325
2022-12-26 11:32:16 -08:00
drduh
8888e329f6 Fix spacing 2022-12-26 11:29:56 -08:00
drduh
600900b4fb mention gnupg on tpm 2022-12-26 11:24:57 -08:00
drduh
658d806b6a mention wsl2-ssh-pageant alt 2022-12-26 11:22:19 -08:00
drduh
b476dc37b5 mention KO attacks 2022-12-26 11:20:03 -08:00
drduh
ad340b5f18 mention forcesig flag to prompt pin each time 2022-12-26 11:13:43 -08:00
drduh
18cf52dfb7 Note public key recovery article 2022-12-26 11:06:25 -08:00
drduh
155df18d29
Merge pull request #359 from drduh/wip-winter22
Fix issues #347, #354, #353, #349, #334
2022-12-26 11:00:23 -08:00